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COMPLETE LISTING OF CLAIMS 



1-20 (Cancelled.) 



21. 



(New) 



A method of operating a portable computer, 



comprising : 

a) storing records of events experienced by the computer 
in user-accessible memory within the computer; 

b) using some of the records as seed for generating 
plain text of a first session key Kl; and then 

c) encrypting Kl, transmitting Kl (encrypted) to an 
external terminal, receiving an encrypted response from 
the external terminal, and de-crypting the encrypted 
response using the plain text of Kl . 

22. (New) Method according to claim 21, and further 
comprising : 

d) repeating processes of paragraphs (a) and (b) to 
produce a second session key K2, different from the first 
session key Kl; and 

e) using K2 in a transaction with an external terminal. 

23. (New) Method according to claim 21, wherein the records 
used as seed include at least one element selected from the 
following group: 
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1) recorded button selections, 

2) recorded pointer movements, 

3) recorded data entered by a user, 

4) current date setting, and 

5) current time setting. 

24. (New) A method, comprising: 

a) using a portable computer to 

i) generate a first session key Kl, based on 
one or more seeds derived from data contained 
in user-accessible memory; 

ii) encrypt Kl into Kl (encrypted) , using a 
public key PK; 

iii) transmitting Kl (encrypted) to an 
external terminal in connection with a first 
transaction; 

b) using the portable computer to 

i) generate a second session key K2, based on 
one or more seeds derived from data contained 
in user-accessible memory; 

ii) encrypt K2 into K2 (encrypted) , using a 
the public key PK; 

iii) transmitting K2 (encrypted) to an 
external terminal in connection with a second 
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transaction. 

25. (New) Method according to claim 24, wherein the data 
from which as the seeds are derived include at least one element 
selected from the following group: 

1) recorded button selections, 

2) recorded pointer movements, 

3) recorded data entered by a user, 

4) current date setting, and 

5) current time setting. 

26. (New) Method according to claim 24, and further 
comprising: 

c) in connection with the first transaction, 



i) 



receiving into the portable computer an 



encrypted message EMI from the external 



terminal, and 



ii) de-crypting EMI using Kl . 



27 



(New) 



Method according to claim 26, and further 



comprising : 



d) in connection with the second transaction, 



i) 



receiving into the portable computer an 



encrypted message EM2 from the external 
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terminal, and 

ii) de-crypting EM2 using K2 . 

28. (New) A method, comprising: 

a) maintaining a commercially available Personal 
Digital Assistant, PDA, which has no secure area for 
storing an encryption key usable to encrypt outgoing 
data; and 

b) using the PDA for encryption and transmission 
of a message to an external controller in connection with 
a financial transaction. 

29. (New) Method according to claim 28, wherein the 
encryption comprises 

a) deriving a seed from data stored in user-accessible 
memory; and 

b) deriving a session key from said seed, which session 
key is used in the financial transaction, and not used 
thereafter. 

30. (New) Apparatus, comprising: 
a) a portable computer having 

i) no secure area for storing an encryption 
key used to encrypt outgoing data; 
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ii) system memory, all of which is accessible 
to a user of the computer; and 

iii) data stored in the system memory, which 
data changes over time; 

b) means for 

i) utilizing selected changing data in the 
system memory as a seed for generating a 
session key Kl; 

ii) encrypting Kl into Kl (encrypted) ; and 

iii) transmitting Kl (encrypted) to an 
external terminal . 



31. (New) Apparatus according to claim 30, wherein the data 
used as the seed includes at least one element selected from the 
following group: 

1) recorded button selections, 

2) recorded pointer movements, 

3) recorded data entered by a user, 

4) current date setting, and 

5) current time setting. 



32. (New) Apparatus according to claim 31, and further 
comprising : 

c) means for 
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i) receiving an encrypted message from the 
external terminal, and 

ii) de-crypting the encrypted message using 
Kl. 

33. (New) A portable computer, comprising: 

a) means for storing records of events experienced by 
the computer in user-accessible memory within the 
computer; 

b) means for using some of the records as a seed for 
generating an encryption key; and 

c) means for using the encryption key in a transaction 
with an external terminal . 

34. (New) Method according to claim 33, wherein the records 
used as the seed include at least one element selected from the 
following group: 

1) recorded button selections, 

2) recorded pointer movements, 

3) recorded data entered by a user, 

4) current date setting, and 

5) current time setting. 

35. (New) Method according to claim 21, wherein the portable 
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computer requires entry of a Personal Identification Number, PIN, 
prior to generation of the encryption key, and will not complete 
the transaction without the PIN. 

36. (New) Method according to claim 24, wherein the portable 
computer requires entry of a Personal Identification Number, PIN, 
prior to generation of the encryption key, and will not complete 
the transaction without the PIN. 

37. (New) Method according to claim 26, wherein the portable 
computer requires entry of a Personal Identification Number, PIN, 
prior to encryption, and will not complete the transaction without 
the PIN. 

38. (New) A method, comprising: 

a) storing records of events experienced by a portable 
computer in user-accessible memory within the computer; 

b) using some of the records as a seed for generating 
a session key Kl; 

c) encrypting Kl into Kl (encrypted) using a public key; 

d) transmitting Kl (encrypted) to an external terminal; 

e) at the external terminal, decrypting Kl (encrypted) 
into Kl ; 

f) encrypting a message M into M (encrypted) using Kl as 
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key; 

g) transmitting M (encrypted) to the portable computer; 
and 

h) decrypting M (encrypted) using Kl within the portable 
computer . 
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